CN107392030A - A kind of method and device for detecting virtual machine and starting safety - Google Patents

A kind of method and device for detecting virtual machine and starting safety Download PDF

Info

Publication number
CN107392030A
CN107392030A CN201710632814.0A CN201710632814A CN107392030A CN 107392030 A CN107392030 A CN 107392030A CN 201710632814 A CN201710632814 A CN 201710632814A CN 107392030 A CN107392030 A CN 107392030A
Authority
CN
China
Prior art keywords
virtual
module
virtual machine
tpm
virtual tpm
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
CN201710632814.0A
Other languages
Chinese (zh)
Inventor
刘海伟
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Inspur Beijing Electronic Information Industry Co Ltd
Original Assignee
Inspur Beijing Electronic Information Industry Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Inspur Beijing Electronic Information Industry Co Ltd filed Critical Inspur Beijing Electronic Information Industry Co Ltd
Priority to CN201710632814.0A priority Critical patent/CN107392030A/en
Publication of CN107392030A publication Critical patent/CN107392030A/en
Pending legal-status Critical Current

Links

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/50Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems
    • G06F21/57Certifying or maintaining trusted computer platforms, e.g. secure boots or power-downs, version controls, system software checks, secure updates or assessing vulnerabilities
    • G06F21/575Secure boot
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F9/00Arrangements for program control, e.g. control units
    • G06F9/06Arrangements for program control, e.g. control units using stored programs, i.e. using an internal store of processing equipment to receive or retain programs
    • G06F9/44Arrangements for executing specific programs
    • G06F9/455Emulation; Interpretation; Software simulation, e.g. virtualisation or emulation of application or operating system execution engines
    • G06F9/45533Hypervisors; Virtual machine monitors
    • G06F9/45558Hypervisor-specific management and integration aspects
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F9/00Arrangements for program control, e.g. control units
    • G06F9/06Arrangements for program control, e.g. control units using stored programs, i.e. using an internal store of processing equipment to receive or retain programs
    • G06F9/44Arrangements for executing specific programs
    • G06F9/455Emulation; Interpretation; Software simulation, e.g. virtualisation or emulation of application or operating system execution engines
    • G06F9/45533Hypervisors; Virtual machine monitors
    • G06F9/45558Hypervisor-specific management and integration aspects
    • G06F2009/45587Isolation or security of virtual machine instances

Landscapes

  • Engineering & Computer Science (AREA)
  • Software Systems (AREA)
  • Theoretical Computer Science (AREA)
  • General Engineering & Computer Science (AREA)
  • Computer Hardware Design (AREA)
  • Computer Security & Cryptography (AREA)
  • Physics & Mathematics (AREA)
  • General Physics & Mathematics (AREA)
  • Storage Device Security (AREA)

Abstract

The invention discloses a kind of method for detecting virtual machine and starting safety, the metric of virtual machine add-in is measured by virtual TPM module corresponding to virtual machine, and metric and benchmark metric value are contrasted by security centre, whether the add-in of final confirmation virtual machine is correct, if correct, virtual machine can be with clean boot.Each virtual machine has a corresponding virtual TPM module in the present invention, can be when several virtual machines need to start simultaneously, the add-in of each virtual machine is detected respectively, it is non-interference to the metrics process of each virtual machine, improve detection efficiency, after detection virtual machine add-in is correct, the security of virtual machine and whole system is ensure that, is advantageous to improve the performance of system operation.

Description

A kind of method and device for detecting virtual machine and starting safety
Technical field
The present invention relates to virtual machine field, more particularly to a kind of method and device for detecting virtual machine and starting safety.
Background technology
With the development of cloud computing technology, realize the unified representation and logical abstraction of IT resources, it possess distribution according to need, The characteristics of extendable, reduce the cost of IT operations.
Virtual machine is the application one side of cloud computing technology, refers to a kind of special software, he can put down in computer A kind of environment is created between platform and terminal user, and terminal user is then that the environment created based on this software is soft to operate Part, operate, do not interfere with each other independently of each other.
But existing software virtual machine is in actual application, due to supporting the hardware resource of virtual machine operation at this Ground is invisible, is subject to be tampered in data transfer or loading and attacks, causes virtual machine to be unable to clean boot.
The content of the invention
It is an object of the invention to provide a kind of method for detecting virtual machine and starting safety, solving virtual machine can not be safe The problem of startup, security when virtual machine starts is ensured, it is a further object of the present invention to provide one kind detection virtual machine to open Move the device of safety.
In order to solve the above technical problems, the present invention provides a kind of method for detecting virtual machine and starting safety, including:
When supplementary module monitors virtual machine start-up loading item, virtual TPM management module is searched and started described virtual Virtual TPM module corresponding to machine, wherein, the virtual TPM module is the module that the virtual TPM management module is pre-created, And each virtual machine has the TPM modules corresponding to one;The virtual TPM module measures the virtual machine add-in Metric;When the add-in of the virtual machine starts and finished, the virtual TPM module sends the metric to safety Center;The security centre judges whether the metric meets default benchmark metric value, if it is, generation is described virtual The judged result of the startup safety of machine.
Wherein, also include before supplementary module monitors virtual machine start-up loading item:
When creating the virtual machine, the virtual TPM management module is using TPM analog modules as template establishment and the void The virtual TPM module corresponding to plan machine, and the data of the virtual TPM module are preserved in a manner of encryption to local disk.
Wherein, before supplementary module monitors virtual machine start-up loading item, in addition to:
The virtual TPM module measures the add-in of the virtual machine, obtains and sends metric to the security centre, As benchmark metric value.
Wherein, also include after virtual TPM module is started:
The virtual TPM manager presses predetermined period, and the data of the virtual TPM module are preserved in a manner of encryption to originally Local disk.
Wherein, the virtual TPM management module is searched the virtual machine and included with the presence or absence of corresponding virtual TPM module:
Virtual TPM management module virtual TPM module according to corresponding to being searched the identification information of the virtual machine.
Wherein, the metric of the virtual TPM module measurement virtual machine add-in includes:
The virtual TPM module after hash algorithm computing, obtains the data of the virtual machine add-in described Metric.
Present invention also offers a kind of system for detecting virtual machine and starting safety, including:
Virtual TPM management module, for when supplementary module monitors virtual machine start-up loading item, virtual TPM to manage mould Block is searched and starts virtual TPM module corresponding to the virtual machine, wherein, the virtual TPM module is the virtual TPM management The module that module is pre-created, and each virtual machine has the TPM modules corresponding to one;
Virtual TPM module, the metric of the virtual machine add-in is measured for the virtual TPM;In the virtual machine Add-in start when finishing, the virtual TPM module sends the metric to security centre;
The security centre judges whether the metric meets default benchmark metric value, if it is, described in generation The judged result of the startup safety of virtual machine.
Wherein, the virtual TPM management module is additionally operable to:
Before supplementary module monitors virtual machine start-up loading item, when creating the virtual machine, the virtual TPM pipe Module is managed using TPM analog modules as the template establishment virtual TPM module corresponding with the virtual machine, and in a manner of encryption The data of the virtual TPM module are preserved to local disk.
Wherein, the virtual TPM management module is additionally operable to:
After virtual TPM is started, the virtual TPM management module presses predetermined period, is preserved in a manner of encryption described The data of virtual TPM module are to local disk.
Wherein, the virtual TPM module is used for:
The virtual TPM module after hash algorithm computing, obtains the data of the virtual machine add-in described Metric.
A kind of method for detecting virtual machine and starting safety provided by the present invention, when virtual machine starts, passes through virtual TPM Management module searches virtual TPM module corresponding to virtual machine, and the add-in of virtual machine is measured with virtual TPM module, will be obtained Metric and benchmark metric value set in advance contrast, so as to realize whether the add-in of the virtual machine is attacked and distorted Judgement, and each virtual machine has a corresponding virtual TPM module in the present invention, if multiple virtual machines are in the same time When being inside required for starting, each virtual TPM module can measure within the same time to the add-in of each virtual machine, So as to judge whether virtual machine can improve the efficiency that virtual machine is detected before virtual machine startup, and this hair with clean boot Bright detection program is easy and effective, can relatively accurate security of the guarantee when virtual machine starts, improve virtual machine Performance.
Brief description of the drawings
, below will be to embodiment or existing for the clearer explanation embodiment of the present invention or the technical scheme of prior art The required accompanying drawing used is briefly described in technology description, it should be apparent that, drawings in the following description are only this hair Some bright embodiments, for those of ordinary skill in the art, on the premise of not paying creative work, can be with root Other accompanying drawings are obtained according to these accompanying drawings.
Fig. 1 is a kind of flow chart for embodiment that detection virtual machine provided by the invention starts safety;
Fig. 2 is a kind of embodiment flow chart that establishment virtual machine provided by the invention corresponds to virtual TPM module;
Fig. 3 is the structured flowchart for the system that detection virtual machine provided in an embodiment of the present invention starts safety.
Embodiment
In order that those skilled in the art more fully understand the present invention program, with reference to the accompanying drawings and detailed description The present invention is described in further detail.Obviously, described embodiment is only part of the embodiment of the present invention, rather than Whole embodiments.Based on the embodiment in the present invention, those of ordinary skill in the art are not making creative work premise Lower obtained every other embodiment, belongs to the scope of protection of the invention.
Detection virtual machine provided by the invention starts a kind of flow chart of embodiment of safety, as shown in figure 1, should Method can include:
Step S101:When supplementary module monitors virtual machine start-up loading item, virtual TPM management module is searched and started Virtual TPM module corresponding to the virtual machine.
A kind of phy chip of entity specifically, TPM is also known as trusted root platform, available for detect some equipment or The security of program., can and virtual TPM module is the advance module that the virtual TPM management module creates according to the TPM of entity To detect the security of some virtual units under virtual environment, and each virtual machine is corresponding with a virtual TPM module, uses To measure the add-in metric of virtual machine, if multiple virtual machines are in certain time period, it is required for starting, can uses Respective virtual TPM module, is independent of each other, and is advantageous to improve detection efficiency.
Can be an independent functional module it should be noted that for function possessed by virtual TPM management module The function realized or in a function built in some functional module, but being had when virtual TPM management module When some functions belong to a build-in function of some functional module, the functional module may also need to complete some other work( It can operate, influence whether the operation of correlation function in the present invention, so as to influence the efficiency of the detection before virtual machine starts, so as to Influence the starting efficiency of virtual machine in whole system.So it is virtual TPM management module as one than more preferably scheme Associative operation in the independent Implement of Function Module present invention, but this is not the essential features of the present invention.
Step S102:The virtual TPM module measures the metric of the virtual machine add-in.
Step S103:When the add-in of the virtual machine starts and finished, the virtual TPM module sends out the metric Deliver to security centre.
Specifically, the add-in related data of virtual machine, for example, file system, operating system and other similar numbers According to be usually leave concentratedly in hardware resource, but hardware resource for local virtual machine when it is sightless, if directly The data of correlation are read from hardware resource, and the data there is a situation where to be attacked or distorted, if virtual machine starts as usual Will exist can not start or start after can not normal work in addition equipment belt is come poisoning intrusion etc. harm, so need open , it is necessary to be measured item by item to the data in add-in during dynamic virtual machine, finally determine whether virtual machine can be safe according to metric Start.
In addition, in a kind of specific embodiment in the present invention, virtual TPM module can specifically include three parts:Virtually Feasible measurement root, virtual credible storage root and virtual credible report root.Because the add-in of virtual machine has more item datas, virtually Credible measurement root is needed to measure more item datas of virtual machine add-in item by item, and the metric for often obtaining an item data is stored in In virtual credible storage root, deposited until the data metric completion of all add-ins, then by virtual credible report root from virtual credible The metric that Chu Genzhong extracts each item data is sent to security centre.But this is not the necessary technology scheme of the present invention, with this Similar technical scheme is numerous to list herein.
Step S104:The security centre judges whether the metric meets default benchmark metric value, if it is, Determine the virtual machine can clean boot, if it is not, then the virtual machine is unable to clean boot.
Specifically, if metric does not meet default benchmark metric value, illustrate the loading item data and original of virtual machine It may be changed to compare, if starting virtual machine, it will the risk to break down be present, so it is virtual to be unable to clean boot Machine, conversely, then can be with clean boot virtual machine.
Security centre can be disposed on that, with the same equipment of virtual machine, remote equipment can also be arranged at, usually several The individual equipment for being provided with virtual machine is stored with benchmark degree jointly equipped with a security centre in the equipment where the security centre Value, and virtual machine can also be installed in the equipment.
Based on above-described embodiment, in another specific embodiment of the invention, before virtual machine startup, for each void The establishment process of virtual TPM module corresponding to plan machine, refers to Fig. 2, and Fig. 2 corresponds to virtual for establishment virtual machine provided by the invention A kind of embodiment flow chart of TPM modules, this method can include:
Step S201:Supplementary module monitors to create the operation of virtual machine.
It should be noted that supplementary module can specifically include monitoring module and data path module, monitoring module is main It is the action for monitoring virtual machine, for example, the establishment of virtual machine, startup, closing, hang-up and migration, in the action of virtual machine When new change occurs, relevant device can be notified to take the reply operation of correlation in time, and data path module is then in void When plan machine needs to start, by under corresponding virtual TPM module carry to virtual environment, so that virtual machine uses.
Step S202:Supplementary module sends the message that the operation for creating virtual machine be present to virtual TPM management module.
Step S203:Virtual TPM management module creates corresponding with newly-built virtual machine empty using TPM simulators as template Intend TPM modules.
It should be noted that it is some in particular cases, when supplementary module detects that virtual machine needs to start, to virtual TPM management modules send message, and for some reason, such as corresponding virtual TPM module is deleted or altered, and cause void Intend TPM modules can not find corresponding to virtual TPM module, or the virtual TPM module found is unavailable, and this is that system can also write from memory Thinking that the virtual machine belongs to newly-built virtual machine, virtual TPM management module can also re-create corresponding virtual management module, but It is that the probability that this special circumstances occur is very small.
Step S204:Virtual TPM management module is by the data storage of the virtual TPM module newly created to local disk.
Measured in view of virtual TPM modularity after the metric of virtual machine, it is necessary to have security centre by metric and benchmark Metric is contrasted, and the setting for benchmark metric value can be before virtual machine is created, and create as needed What virtual machine precalculated out, and another fairly simple mode is to create completion virtual machine and corresponding virtual TPM Afterwards, it is considered that the security of the virtual machine newly created is good, it is possible to sent with virtual TPM module into safety The heart is as benchmark metric value, so the above embodiment of the present invention can be improved further, can specifically include:
Step S205:The virtual TPM module measures the add-in of the virtual machine, obtains the metric of virtual machine.
Step S206:The virtual TPM module sends the metric of virtual machine to security centre, as benchmark metric Value.
It should be noted that not necessarily virtual TPM module measures the metric work of newly-built virtual machine in the present invention On the basis of metric or otherwise obtain benchmark metric value, so such scheme be not the present invention necessary skill Art feature.
Based on above-described embodiment, it is contemplated that virtual TPM module data safety issue, a kind of specific embodiment of the invention In can include:
After virtual TPM module is started, the virtual TPM manager presses predetermined period, and institute is preserved in a manner of encryption The data of virtual TPM module are stated to local disk.
Generally, before virtual machine starts, virtual TPM module just needs to start, corresponding until virtual machine closing Virtual TPM module can just close, to be measured at any time to virtual machine.The virtual TPM module data of consideration there may be by Situation about distorting, so, can be by the data in periodic refresh local disk, to ensure the accuracy of data.During as the cycle Between setting, can according to practical application need and set.
Based on above-described embodiment, in another specific embodiment of the invention, can include:
It is described virtual when the virtual TPM management module searches the virtual machine with the presence or absence of corresponding virtual TPM module TPM management modules virtual TPM module according to corresponding to being searched the identification information of the virtual machine.
Specifically, each virtual machine carries itself distinctive numbering, it is possible thereby to good to each virtual TPM according to changing Numbered corresponding to module facility, or the storage location of each virtual TPM module is set according to numbering.
Based on above-mentioned any embodiment, in a kind of specific embodiment in the present invention, can include:
During the metric of virtual TPM module measurement virtual machine add-in, the virtual TPM module is by the virtual machine The data of add-in obtain described metric after hash algorithm computing.
Because hash algorithm computing has uniqueness to different data operations, hash algorithm pair is used in the present invention The data of virtual machine add-in carry out computing, can obtain an accurate data, but this be not yet the present invention only One embodiment, the present invention can be also realized using other algorithms, as long as operation result reaches the requirement of the degree of accuracy.
The system for starting safety to detection virtual machine provided in an embodiment of the present invention below is introduced, inspection described below The method for surveying system and above-described detection virtual machine startup safety that virtual machine starts safety can be mutually to should refer to.
Fig. 3 is the structured flowchart for the system that detection virtual machine provided in an embodiment of the present invention starts safety, and reference picture 3 detects The system that virtual machine starts safety can include:
Virtual TPM management module 100, virtual TPM module 200 and security centre 300;
Virtual TPM management module 100, for when supplementary module monitors virtual machine start-up loading item, virtual TPM management Module is searched and starts virtual TPM module corresponding to the virtual machine, wherein the virtual TPM module is the virtual TPM pipe The module that reason module is pre-created;
Virtual TPM module 200, the metric of the virtual machine add-in is measured for the virtual TPM;Described virtual When the add-in startup of machine finishes, the virtual TPM module sends the metric to security centre;
Security centre 300, for judging whether the metric meets default benchmark metric value, if it is, to institute State virtual machine and send and start order.
As a kind of embodiment, the system that detection virtual machine provided by the present invention starts safety can also enter one Step includes:
The virtual TPM management module 100 is additionally operable to before supplementary module monitors virtual machine start-up loading item, is being created When building the virtual machine, the virtual TPM management module is using TPM analog modules as template establishment institute corresponding with the virtual machine Virtual TPM module is stated, and preserves in a manner of encryption the data of the virtual TPM module to local disk.
As a kind of embodiment, the system that detection virtual machine provided by the present invention starts safety can also enter one Step includes:
The virtual TPM management module 100 is additionally operable to after virtual TPM is started, and the virtual TPM management module is by pre- If the cycle, the data of the virtual TPM module are preserved in a manner of encryption to local disk.
Alternatively, the virtual TPM module 200 is used for:
The virtual TPM module after hash algorithm computing, obtains the data of the virtual machine add-in described Metric.
The system that the detection virtual machine of the present embodiment starts safety is used to realize that foregoing detection virtual machine starts safety Method, therefore detect the visible detection virtual machine hereinbefore of embodiment that virtual machine starts in the system of safety and start peace The embodiment part of full method, for example, virtual TPM management module 100, for realizing that above-mentioned detection virtual machine starts safety Step S101 in method, virtual TPM module 200, for realizing above-mentioned steps S102 and S103, virtual TPM module 300, it is used for Above-mentioned steps S104 is realized, so, its embodiment is referred to the description of corresponding various pieces embodiment, herein not Repeat again.
Each embodiment is described by the way of progressive in this specification, what each embodiment stressed be with it is other The difference of embodiment, between each embodiment same or similar part mutually referring to.For dress disclosed in embodiment For putting, because it is corresponded to the method disclosed in Example, so description is fairly simple, related part is referring to method part Explanation.
Professional further appreciates that, with reference to the unit of each example of the embodiments described herein description And algorithm steps, can be realized with electronic hardware, computer software or the combination of the two, in order to clearly demonstrate hardware and The interchangeability of software, the composition and step of each example are generally described according to function in the above description.These Function is performed with hardware or software mode actually, application-specific and design constraint depending on technical scheme.Specialty Technical staff can realize described function using distinct methods to each specific application, but this realization should not Think beyond the scope of this invention.
Directly it can be held with reference to the step of method or algorithm that the embodiments described herein describes with hardware, processor Capable software module, or the two combination are implemented.Software module can be placed in random access memory (RAM), internal memory, read-only deposit Reservoir (ROM), electrically programmable ROM, electrically erasable ROM, register, hard disk, moveable magnetic disc, CD-ROM or technology In any other form of storage medium well known in field.
The method of safety is started to detection virtual machine provided by the present invention above and device is described in detail.This Apply specific case in text to be set forth the principle and embodiment of the present invention, the explanation of above example is only intended to Help to understand method and its core concept of the invention.It should be pointed out that for those skilled in the art, Without departing from the principles of the invention, some improvement and modification can also be carried out to the present invention, these are improved and modification also falls Enter in the protection domain of the claims in the present invention.

Claims (10)

  1. A kind of 1. method for detecting virtual machine and starting safety, it is characterised in that including:
    When supplementary module monitors virtual machine start-up loading item, virtual TPM management module is searched and starts the virtual machine pair The virtual TPM module answered, wherein, the virtual TPM module is the module that the virtual TPM management module is pre-created, and often The individual virtual machine corresponds to a virtual TPM module;
    The virtual TPM module measures the metric of the virtual machine add-in;
    When the add-in of the virtual machine starts and finished, the virtual TPM module sends the metric to security centre;
    The security centre judges whether the metric meets default benchmark metric value, if it is, generation is described virtual Machine starts the judged result of safety.
  2. 2. according to the method for claim 1, it is characterised in that before supplementary module monitors virtual machine start-up loading item Also include:
    When creating the virtual machine, the virtual TPM management module is using TPM analog modules as template establishment and the virtual machine The corresponding virtual TPM module, and the data of the virtual TPM module are preserved in a manner of encryption to local disk.
  3. 3. according to the method for claim 2, it is characterised in that before supplementary module monitors virtual machine start-up loading item Also include:
    The virtual TPM module measures the add-in of the virtual machine, obtains and sends metric to the security centre, as The benchmark metric value.
  4. 4. according to the method for claim 1, it is characterised in that also include after virtual TPM module is started:
    The virtual TPM manager is preserved the data of the virtual TPM module by predetermined period to this earth magnetism in a manner of encrypting Disk.
  5. 5. according to the method for claim 1, it is characterised in that the virtual TPM management module is searched and starts the void Virtual TPM module includes corresponding to plan machine:
    Virtual TPM management module virtual TPM module according to corresponding to being searched the identification information of the virtual machine.
  6. 6. according to the method described in any one of claim 1 to 5, it is characterised in that the virtual TPM module measurement virtual machine adds Carrying the metric of item includes:
    The data of the virtual machine add-in after hash algorithm computing, are obtained described measurement by the virtual TPM module Value.
  7. A kind of 7. system for detecting virtual machine and starting safety, it is characterised in that including:Virtual TPM management module, virtual TPM mould Block and security centre;
    Wherein, the virtual TPM management module, for when supplementary module monitors virtual machine start-up loading item, virtual TPM pipe Reason module is searched and starts virtual TPM module corresponding to the virtual machine, wherein the virtual TPM module is the virtual TPM The module that management module is pre-created, and each virtual machine corresponds to a virtual TPM module;
    The virtual TPM module, the metric of the virtual machine add-in is measured for the virtual TPM;In the virtual machine Add-in start when finishing, the virtual TPM module sends the metric to security centre;
    The security centre, for judging whether the metric meets default benchmark metric value, if it is, described in generation Virtual machine starts the judged result of safety.
  8. 8. system according to claim 7, it is characterised in that the virtual TPM management module is additionally operable to:
    Before supplementary module monitors virtual machine start-up loading item, when creating the virtual machine, using TPM analog modules as mould Plate creates the virtual TPM module corresponding with the virtual machine, and the number of the virtual TPM module is preserved in a manner of encryption According to local disk.
  9. 9. system according to claim 7, it is characterised in that the virtual TPM management module is additionally operable to:
    After virtual TPM is started, the data of the virtual TPM module are preserved in a manner of encrypting by predetermined period to this earth magnetism Disk.
  10. 10. according to the system described in any one of claim 7 to 9, it is characterised in that the virtual TPM module is specifically used for:
    The data of the virtual machine add-in after hash algorithm computing, are obtained described measurement by the virtual TPM module Value.
CN201710632814.0A 2017-07-28 2017-07-28 A kind of method and device for detecting virtual machine and starting safety Pending CN107392030A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201710632814.0A CN107392030A (en) 2017-07-28 2017-07-28 A kind of method and device for detecting virtual machine and starting safety

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201710632814.0A CN107392030A (en) 2017-07-28 2017-07-28 A kind of method and device for detecting virtual machine and starting safety

Publications (1)

Publication Number Publication Date
CN107392030A true CN107392030A (en) 2017-11-24

Family

ID=60341835

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201710632814.0A Pending CN107392030A (en) 2017-07-28 2017-07-28 A kind of method and device for detecting virtual machine and starting safety

Country Status (1)

Country Link
CN (1) CN107392030A (en)

Cited By (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN108132828A (en) * 2017-12-25 2018-06-08 浪潮(北京)电子信息产业有限公司 Imaginary Mechanism construction method, device and the equipment realized based on libvirt
CN108255579A (en) * 2018-01-11 2018-07-06 浪潮(北京)电子信息产业有限公司 A kind of virtual machine management method and device based on KVM platforms
CN109101319A (en) * 2018-08-09 2018-12-28 郑州云海信息技术有限公司 It is a kind of to realize TPCM fully virtualized platform and its working method on QEMU
CN111831609A (en) * 2020-06-18 2020-10-27 中国科学院数据与通信保护研究教育中心 Method and system for unified management and distribution of binary file metric values in virtualization environment

Citations (10)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JPH11212807A (en) * 1998-01-30 1999-08-06 Hitachi Ltd Program execution method
CN1997955A (en) * 2004-06-24 2007-07-11 英特尔公司 Method and apparatus for providing secure virtualization of a trusted platform module
CN101405694A (en) * 2006-03-21 2009-04-08 国际商业机器公司 Method and apparatus for migrating a virtual TPM instance and preserving uniqueness and completeness of the instance
CN101488173A (en) * 2009-01-15 2009-07-22 北京交通大学 Method for measuring completeness of credible virtual field start-up files supporting non-delaying machine
CN101599025A (en) * 2009-07-07 2009-12-09 武汉大学 Safety virtualization method of trusted crypto module
CN103501303A (en) * 2013-10-12 2014-01-08 武汉大学 Active remote attestation method for measurement of cloud platform virtual machine
CN103888251A (en) * 2014-04-11 2014-06-25 北京工业大学 Virtual machine credibility guaranteeing method in cloud environment
CN105830082A (en) * 2013-12-24 2016-08-03 微软技术许可有限责任公司 Virtual Machine Guarantee
CN105912953A (en) * 2016-05-11 2016-08-31 北京北信源软件股份有限公司 Trusted booting based data protecting method of virtual machine
CN106354550A (en) * 2016-11-01 2017-01-25 广东浪潮大数据研究有限公司 Method, device and system for protecting security of virtual machine

Patent Citations (10)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JPH11212807A (en) * 1998-01-30 1999-08-06 Hitachi Ltd Program execution method
CN1997955A (en) * 2004-06-24 2007-07-11 英特尔公司 Method and apparatus for providing secure virtualization of a trusted platform module
CN101405694A (en) * 2006-03-21 2009-04-08 国际商业机器公司 Method and apparatus for migrating a virtual TPM instance and preserving uniqueness and completeness of the instance
CN101488173A (en) * 2009-01-15 2009-07-22 北京交通大学 Method for measuring completeness of credible virtual field start-up files supporting non-delaying machine
CN101599025A (en) * 2009-07-07 2009-12-09 武汉大学 Safety virtualization method of trusted crypto module
CN103501303A (en) * 2013-10-12 2014-01-08 武汉大学 Active remote attestation method for measurement of cloud platform virtual machine
CN105830082A (en) * 2013-12-24 2016-08-03 微软技术许可有限责任公司 Virtual Machine Guarantee
CN103888251A (en) * 2014-04-11 2014-06-25 北京工业大学 Virtual machine credibility guaranteeing method in cloud environment
CN105912953A (en) * 2016-05-11 2016-08-31 北京北信源软件股份有限公司 Trusted booting based data protecting method of virtual machine
CN106354550A (en) * 2016-11-01 2017-01-25 广东浪潮大数据研究有限公司 Method, device and system for protecting security of virtual machine

Cited By (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN108132828A (en) * 2017-12-25 2018-06-08 浪潮(北京)电子信息产业有限公司 Imaginary Mechanism construction method, device and the equipment realized based on libvirt
CN108255579A (en) * 2018-01-11 2018-07-06 浪潮(北京)电子信息产业有限公司 A kind of virtual machine management method and device based on KVM platforms
CN109101319A (en) * 2018-08-09 2018-12-28 郑州云海信息技术有限公司 It is a kind of to realize TPCM fully virtualized platform and its working method on QEMU
CN109101319B (en) * 2018-08-09 2021-07-27 郑州云海信息技术有限公司 Working method of platform for realizing TPCM full virtualization on QEMU
CN111831609A (en) * 2020-06-18 2020-10-27 中国科学院数据与通信保护研究教育中心 Method and system for unified management and distribution of binary file metric values in virtualization environment
CN111831609B (en) * 2020-06-18 2024-01-02 中国科学院数据与通信保护研究教育中心 Method and system for unified management and distribution of binary metric values in virtualized environments

Similar Documents

Publication Publication Date Title
CN107392030A (en) A kind of method and device for detecting virtual machine and starting safety
US11777705B2 (en) Techniques for preventing memory timing attacks
CN109117250B (en) Simulator identification method, simulator identification equipment and computer readable medium
US10972475B1 (en) Account access security using a distributed ledger and/or a distributed file system
CN103368987B (en) Cloud server, application program verification, certification and management system and application program verification, certification and management method
CN104751048B (en) A kind of dynamic link library integrity measurement method under pre-linking mechanism
CN102473223B (en) Information processing device and information processing method
WO2011146305A2 (en) Extending an integrity measurement
CN108399329A (en) A method of improving trusted application safety
KR20150105390A (en) Roots-of-trust for measurement of virtual machines
CN111737081B (en) Cloud server monitoring method, device, equipment and storage medium
CN104850792A (en) Establishment method and apparatus of trust chain of server
US11836244B2 (en) Clone application detection mechanism for securing trusted execution environments against a malicious operating system
CN107808096A (en) Method, terminal device and the storage medium of malicious code are injected into during detection APK operations
JP2015524128A (en) Network-based management of protected data sets
CN103793651A (en) Kernel integrity detection method based on Xen virtualization
Tillmanns et al. Firmware insider: Bluetooth randomness is mostly random
CN107341389B (en) The method and device for preventing equipment to be multiplexed
CN116414722B (en) Fuzzy test processing method and device, fuzzy test system and storage medium
CN108073411A (en) A kind of kernel loads method and device of patch
CN109951527B (en) Virtualization system-oriented hypervisor integrity detection method
CN109922056B (en) Data security processing method, terminal and server thereof
CN110071844A (en) A kind of detection script creation system, method and relevant apparatus
CN109740351A (en) A kind of leak detection method, device and the equipment of embedded firmware
CN115130114A (en) Gateway safety starting method and device, electronic equipment and storage medium

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
RJ01 Rejection of invention patent application after publication

Application publication date: 20171124

RJ01 Rejection of invention patent application after publication